This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/6366b4-dd6f-4040-8895-71be0d51919d/1/TsrYKQLQo5Rg5cBEWrCHl0f1sMo.roa File: TsrYKQLQo5Rg5cBEWrCHl0f1sMo.roa (raw, json) Hash identifier: L7l5IVK5YCyw8NKgAKcYl1DhviNDvXYviW43OOWjOwc= Subject key identifier: 4E:CA:D8:29:02:D0:A3:94:60:E5:C0:44:5A:B0:87:97:47:F5:B0:CA Certificate issuer: /CN=55c9b2025e0e695808f6b61ee276aed4fb5680cd Certificate serial: 019B0D299DB77BEC37AABBA0AC9EF15821FC Authority key identifier: 55:C9:B2:02:5E:0E:69:58:08:F6:B6:1E:E2:76:AE:D4:FB:56:80:CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VcmyAl4OaVgI9rYe4nau1PtWgM0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/6366b4-dd6f-4040-8895-71be0d51919d/1/TsrYKQLQo5Rg5cBEWrCHl0f1sMo.roa Signing time: Thu 11 Dec 2025 11:26:29 +0000 ROA not before: Thu 11 Dec 2025 11:26:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154408 IP address blocks: 168.222.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/6366b4-dd6f-4040-8895-71be0d51919d/1/VcmyAl4OaVgI9rYe4nau1PtWgM0.crl rsync://rpki.ripe.net/repository/DEFAULT/be/6366b4-dd6f-4040-8895-71be0d51919d/1/VcmyAl4OaVgI9rYe4nau1PtWgM0.mft rsync://rpki.ripe.net/repository/DEFAULT/VcmyAl4OaVgI9rYe4nau1PtWgM0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0d:29:9d:b7:7b:ec:37:aa:bb:a0:ac:9e:f1:58:21:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=55c9b2025e0e695808f6b61ee276aed4fb5680cd Validity Not Before: Dec 11 11:26:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=4ecad82902d0a39460e5c0445ab0879747f5b0ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:cc:fb:09:2c:c6:59:cd:98:3d:f8:3c:00:b8: d0:af:17:4b:8c:81:8f:33:e4:d6:28:16:8f:0f:30: e3:6a:4f:15:a9:f8:80:8c:71:e2:ca:9d:ef:7c:da: d0:61:24:c6:7b:84:b0:6d:cf:20:89:26:bc:01:c0: 3b:c7:04:38:40:78:60:ea:77:28:ce:8e:44:89:6b: 62:b3:e6:cc:68:1f:b4:d5:4e:ba:30:19:67:fb:43: f3:d3:47:31:ae:db:e9:db:6b:b7:71:53:f4:31:e9: c3:7a:7c:6e:9a:83:f4:07:2f:7c:88:92:0c:35:57: 53:7c:f3:9f:54:61:9d:ef:2d:f5:c7:62:bc:cc:3f: 66:85:eb:88:44:d3:f6:d8:83:66:17:09:ac:1f:e4: e7:84:64:c6:aa:4b:d9:e3:0d:28:f8:b0:e9:c7:cb: cb:09:73:a5:8a:18:bd:aa:ef:50:4d:d2:16:aa:0f: d6:03:e1:dd:72:3d:a9:ca:61:89:90:fa:9a:25:63: 74:d9:64:9b:6a:c0:e8:8d:26:cb:8f:ff:9d:ac:51: 11:61:d8:34:ef:25:a8:b3:36:ce:4c:8d:df:f3:0d: fd:a0:ae:b7:75:5e:c6:bb:50:ac:a2:9e:f5:de:55: 47:84:c2:cd:39:b8:b8:d2:eb:49:45:b2:c8:09:77: 2e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:CA:D8:29:02:D0:A3:94:60:E5:C0:44:5A:B0:87:97:47:F5:B0:CA X509v3 Authority Key Identifier: keyid:55:C9:B2:02:5E:0E:69:58:08:F6:B6:1E:E2:76:AE:D4:FB:56:80:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VcmyAl4OaVgI9rYe4nau1PtWgM0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/6366b4-dd6f-4040-8895-71be0d51919d/1/TsrYKQLQo5Rg5cBEWrCHl0f1sMo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/6366b4-dd6f-4040-8895-71be0d51919d/1/VcmyAl4OaVgI9rYe4nau1PtWgM0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.222.254.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:c7:dd:e6:5a:a3:41:ba:e2:03:6e:0a:1c:66:13:ef:e3:c6: d7:9d:87:6d:f8:ed:90:d8:b0:9d:47:ea:47:5a:2b:50:fb:ac: 5f:a1:42:01:17:eb:b6:8e:39:22:9b:7c:74:a2:78:ab:db:13: 6d:29:09:00:83:73:31:cd:da:e0:ca:20:d4:9f:27:2c:76:1b: 19:dc:44:82:9f:5a:f0:c9:a1:e0:cb:c0:de:5b:5b:52:96:27: 5f:d5:42:57:5c:4b:37:88:9f:79:05:8b:b1:57:b7:a1:76:1a: 7b:20:d6:0a:a5:50:91:e0:40:db:0a:70:fa:a3:db:82:ae:f1: 99:e1:fb:a6:0a:b2:4b:77:56:06:a4:ec:b7:f3:e8:45:2e:74: 3e:1e:39:a7:89:0a:e9:64:f5:13:01:70:6a:c2:9f:e5:e1:29: ac:43:31:92:a0:97:61:e6:d6:17:98:91:2d:12:10:72:40:9c: e2:f1:dc:77:15:22:3e:54:8e:1a:be:d6:93:50:23:a0:dd:49: 8d:48:de:88:f1:dc:b1:dd:17:88:e5:ae:7c:31:8f:44:c4:3e: b5:0c:42:3f:99:df:20:0b:29:b2:7f:e1:28:10:28:2a:c4:6e: 93:4c:97:23:c2:3f:f5:75:0d:96:ee:ad:52:e1:96:5a:62:9f: 0d:47:b0:3b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZsNKZ23e+w3qrugrJ7xWCH8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU1YzliMjAyNWUwZTY5NTgwOGY2YjYxZWUyNzZhZWQ0ZmI1 NjgwY2QwHhcNMjUxMjExMTEyNjI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZWNhZDgyOTAyZDBhMzk0NjBlNWMwNDQ1YWIwODc5NzQ3ZjViMGNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAysz7CSzGWc2YPfg8ALjQrxdLjIGP M+TWKBaPDzDjak8VqfiAjHHiyp3vfNrQYSTGe4Swbc8giSa8AcA7xwQ4QHhg6nco zo5EiWtis+bMaB+01U66MBln+0Pz00cxrtvp22u3cVP0MenDenxumoP0By98iJIM NVdTfPOfVGGd7y31x2K8zD9mheuIRNP22INmFwmsH+TnhGTGqkvZ4w0o+LDpx8vL CXOlihi9qu9QTdIWqg/WA+Hdcj2pymGJkPqaJWN02WSbasDojSbLj/+drFERYdg0 7yWoszbOTI3f8w39oK63dV7Gu1Csop713lVHhMLNObi40utJRbLICXcuawIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFE7K2CkC0KOUYOXARFqwh5dH9bDKMB8GA1UdIwQY MBaAFFXJsgJeDmlYCPa2HuJ2rtT7VoDNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVmNteUFsNE9hVmdJOXJZZTRuYXUxUHRXZ00wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS82MzY2YjQtZGQ2Zi00MDQwLTg4OTUt NzFiZTBkNTE5MTlkLzEvVHNyWUtRTFFvNVJnNWNCRVdyQ0hsMGYxc01vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS82MzY2YjQtZGQ2Zi00MDQwLTg4OTUtNzFiZTBkNTE5MTlk LzEvVmNteUFsNE9hVmdJOXJZZTRuYXUxUHRXZ00wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqN7+MA0G CSqGSIb3DQEBCwUAA4IBAQA6x93mWqNBuuIDbgocZhPv48bXnYdt+O2Q2LCdR+pH WitQ+6xfoUIBF+u2jjkim3x0onir2xNtKQkAg3MxzdrgyiDUnycsdhsZ3ESCn1rw yaHgy8DeW1tSlidf1UJXXEs3iJ95BYuxV7ehdhp7INYKpVCR4EDbCnD6o9uCrvGZ 4fumCrJLd1YGpOy38+hFLnQ+HjmniQrpZPUTAXBqwp/l4SmsQzGSoJdh5tYXmJEt EhByQJzi8dx3FSI+VI4avtaTUCOg3UmNSN6I8dyx3ReI5a58MY9ExD61DEI/md8g Cymyf+EoECgqxG6TTJcjwj/1dQ2W7q1S4ZZaYp8NR7A7 -----END CERTIFICATE-----Generated at Fri Dec 19 16:49:00 2025 by rpki-client